CYBER SECURITY NEWS – WEEK OF AUGUST 12, 2024
Another major IT breach: 3 billion affected in latest attack that exposed data on dark web
- After the major Microsoft IT outage, there was a short fortnight break in terms of IT hazards, and now the pace has again picked up with a global IT data breach that has reportedly seen a leak of private data of around 3 billion people across the globe, raising concerns about the increasing issues around data privacy and security.
- The breach reportedly involved various types of personal data, including names, email addresses, and passwords.
- As the investigation continues, affected individuals are advised to monitor their accounts closely and consider changing passwords to safeguard against potential misuse of their information.
Hackers leak 2.7 billion data records with Social Security numbers
- Almost 2.7 billion records containing sensitive personal information, including names and Social Security numbers, were leaked on a hacking forum.
- This data is believed to have originated from National Public Data, a company that aggregates and sells access to personal information for background checks and other uses.
- The leak was released by a threat actor known as “Fenice,” who claimed that the breach was conducted by another actor named “SXUL” rather than the previously mentioned USDoD.
- The leaked data consists of two text files totaling 277GB, which include plaintext records of individuals, some of whom are deceased.
- Each record typically contains a person’s name, mailing address, and Social Security number, with some records also listing possible aliases.
- While the leak does not contain phone numbers or email addresses, it has raised concerns about the accuracy and potential outdatedness of the information.
Calibrated Healthcare Suffers Data Breach, Patient Information Compromised
- Significant data breach involving Calibrated, a company that specializes in providing data solutions.
- The breach reportedly compromised sensitive information of over 1.5 million users.
- The breach exposed personal details such as names, email addresses, and phone numbers of users, raising concerns about identity theft and privacy violations.
- Calibrated has initiated an investigation into the breach and is collaborating with cybersecurity experts to assess the extent of the damage and prevent future incidents.
- Affected users are advised to monitor their accounts for suspicious activity and consider changing their passwords to enhance security.
ADT confirms data breach after customer info leaked on hacking forum
- ADT, a major American building security company, confirmed a data breach after threat actors leaked allegedly stolen customer data on a hacking forum.
- The breach exposed limited customer information, including email addresses, phone numbers, postal addresses, and locations.
- ADT says there is no evidence that customers’ home security systems or credit card/banking information were compromised.
- The affected customers represent a small percentage of ADT’s 6 million total clients, but the exact number was not provided.
- On July 31st, a threat actor leaked 30,800 customer records allegedly stolen from ADT, including emails, addresses, user IDs, and purchased products
McLaren hospitals disruption linked to INC ransomware attack
- McLaren Health Care hospitals experienced significant disruptions to their IT and phone systems due to an attack attributed to the INC Ransom ransomware group.
- This non-profit healthcare system, which operates 13 hospitals across Michigan and employs over 28,000 staff, announced that patients should still attend their scheduled appointments unless contacted otherwise, despite losing access to critical patient information databases.
- Patients were advised to bring detailed information about their medications and recent lab results, as some appointments and non-emergent procedures might need to be rescheduled.